subject:"Embedded Tomcat 9.0.33"

RE: Embedded Tomcat 9.0.33

2021-03-22 Thread S Abirami

Thanks Christopher for detailed explanation with testing tools. -Original Message- From: Christopher Schultz Sent: Sunday, March 21, 2021 9:02 AM To: users@tomcat.apache.org Subject: Re: Embedded Tomcat 9.0.33 Abirami, On 3/20/21 11:36, S Abirami wrote: > We have deployed embed

Re: Embedded Tomcat 9.0.33

2021-03-20 Thread Christopher Schultz

Abirami, On 3/20/21 11:36, S Abirami wrote: We have deployed embedded tomcat in RHEL 7 with jdk 1.8. For sweet32 vulnerability, we have configured jdk.tls.disabled.algorithm to remove the encryption cipher have 64bit block size. I need a clarification whether JDK configuration is enough for

Embedded Tomcat 9.0.33

2021-03-20 Thread S Abirami

Hi ALL, We have deployed embedded tomcat in RHEL 7 with jdk 1.8. For sweet32 vulnerability, we have configured jdk.tls.disabled.algorithm to remove the encryption cipher have 64bit block size. I need a clarification whether JDK configuration is enough for embedded tomcat to avoid sweet32